Controlling File Access
The core objects of your system, from a user’s perspective, are processes and files. All processes perform some function, but the files contain the instructions needed to start a process. Files store data and provide the fundamental interface to every device you can access on a system. In fact, in Solaris, a file even acts as the interface between a process and a network connection. It is a simple and versatile interface. It provides a name and a location for every user-accessible thing on a running system.
In Solaris, the base security model for files is called discretionary access control (DAC). This model has two principles:
The authorization to use a file is defined by the account that owns it.
A file’s owner may ...
Get OCA Oracle Solaris 11 System Administration Exam Guide (Exam 1Z0-821) now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
